Azure Private Link Private Endpoint pattern-based discovery

  • Release version: Zurich
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Azure Private Link Private Endpoint pattern-based discovery

    The Azure Private Link Private Endpoint pattern-based discovery enables ServiceNow customers to detect and map Azure Private Link Private Endpoint resources within their cloud environments. This functionality is part of the Discovery and Service Mapping Patterns application and supports populating detailed resource information into both CMDB and non-CMDB tables.

    Show full answer Show less

    This discovery pattern helps organizations maintain an accurate and updated configuration management database (CMDB) by identifying Azure Private Link Private Endpoints and related metadata, improving visibility and management of Azure cloud resources.

    Key Features

    • Pattern Activation: The Azure Private Link Private Endpoint discovery pattern is disabled by default. Customers must enable it to begin discovery. Starting with Visibility Content version 6.28.0, enabling or disabling patterns is no longer treated as a customization, ensuring patterns remain updatable.
    • Prerequisites: Microsoft Azure discovery prerequisites must be verified, including setting up Azure service accounts correctly, especially for Azure GovCloud (US) environments where a datacenter URL is required.
    • Data Storage: The discovery populates data in two types of tables:
      • Non-CMDB Tables: When running the Azure - Private Link Private Endpoint - Extended Inventory(LP) pattern, resource details are stored in non-CMDB Azure-specific tables, accessible via the ServiceNow interface for configuration review.
      • CMDB Tables: Core resource information is stored in the Cloud Resource [cmdbcicmpresource] table, including status, location, name, and type (set to microsoft.network/privateendpoints).
    • Configuration Item (CI) Relationships: The pattern automatically creates relationships between discovered resources and other configuration items such as resource groups and Azure datacenters, supporting comprehensive service mapping.
    • Tag Collection: Tags associated with Azure Private Link Private Endpoints are collected and stored in the Key Value [cmdbkeyvalue] table, enabling better resource categorization and filtering.

    Practical Benefits for ServiceNow Customers

    • Accurately discover and maintain Azure Private Link Private Endpoint resources within your CMDB and non-CMDB tables.
    • Enhance cloud environment visibility by mapping resource relationships and operational statuses.
    • Ensure compliance and governance by tracking resource provisioning states and associated tags.
    • Support Azure GovCloud discovery through appropriate configuration of Azure service accounts.
    • Receive ongoing updates to discovery patterns without losing custom activation settings during upgrades.

    Discovery and Service Mapping Patterns finds Azure services on your cloud environment. Discovering some of these resources may require updating to the latest version of the Discovery and Service Mapping Patterns application from the ServiceNow Store.

    Pattern-based discovery and mapping requirements

    Verify the Microsoft Azure discovery prerequisites
    For more information, see the prerequisites section in Microsoft Azure Cloud discovery using patterns.
    Enable the relevant pattern
    The pattern for this service is disabled by default. Starting with Visibility Content version 6.28.0, activating or deactivating a pattern won't be considered a customization, and it will continue to receive updates. Patterns that were previously activated or deactivated will reset to the latest predefined version after upgrading while retaining the last active field value. For more information on enabling patterns, see Activate a disabled pattern.
    Configure the Discovery schedule to support GovCloud
    Discovering Azure GovCloud (US) accounts requires using a datacenter URL when setting up an Azure service account. For more information, see Set up Azure service accounts.

    Discovery and Service Mapping Patterns application populates data in both CMDB and non-CMDB tables.

    Data stored in non-CMDB tables

    Discovery and Service Mapping Patterns application populates data in the non-CMDB table when running the Azure - Private Link Private Endpoint - Extended Inventory(LP) pattern.

    You can review the non-CMDB Azure tables by navigating to All > Configuration > Azure. You can also search the navigation filter for the specific pattern name.

    Table 1. Azure Private Link - Private Endpoint [cmdb_azure_private_link_private_endpoint]
    Field Description
    Kind [kind] The specific category or variant of the resource type.
    Location [location] The geographic region where the resource is deployed.
    Object Id [object_id] The unique identifier for the resource.
    Provisioning State [provisioning_state] The current provisioning or deployment state of the resource.
    Resource Group [resource_group] Name of the resource group.
    Subscription ID [subscription_id] The subscription ID.
    Tenant ID [tenant_id] The identifier for the tenant associated with the resource.
    Configuration Item [configuration_item] References the Cloud Resource [cmdb_ci_cmp_resource] table.

    Data stored in CMDB tables

    Discovery and Service Mapping Patterns application populates data in the CMDB when running the Azure - Private Link Private Endpoint - Extended Inventory(LP) pattern.

    Table 2. Cloud Resource [cmdb_ci_cmp_resource]
    Field Description
    Install Status [install_status] Install status of the resource. Default value is Installed.
    Location [location] The geographic region where the resource is deployed.
    Name [name] The name of the resource.
    Object ID [object_id] The unique identifier for the resource.
    Operational status [operational_status] Operational status of the resource. Default value is Operational.
    Resource type [resource_type] Type of resource. The value is set to microsoft.network/privateendpoints.

    CI relationships

    The pattern creates these relationships to support discovery.

    CI Relationship CI
    Resource Group [cmdb_ci_resource_group] Contains::Contained by Cloud Resource [cmdb_ci_cmp_resource]
    Cloud Resource [cmdb_ci_cmp_resource] Hosted on::Hosts Azure Datacenter [cmdb_ci_azure_datacenter]
    Azure Private Link - Private Endpoint [cmdb_azure_private_link_private_endpoint] References Cloud Resource [cmdb_ci_cmp_resource]

    Azure tag discovery

    The pattern collects tags and populates them in the Key Value [cmdb_key_value] table.
    Table 3. Key Value [cmdb_key_value]
    Field Description
    Key [key] Tag name.
    Value [value] Tag value.